stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 16 Releases Wiki Activity
Files
61f963fd52cd4d6bb2f86afc5a82eac04c04b00e
git.stella-ops.org/docs/implplan/SPRINT_161_evidencelocker.md
master 61f963fd52
Some checks failed
Docs CI / lint-and-preview (push) Has been cancelled
Details
Implement ledger metrics for observability and add tests for Ruby packages endpoints 
- Added `LedgerMetrics` class to record write latency and total events for ledger operations.
- Created comprehensive tests for Ruby packages endpoints, covering scenarios for missing inventory, successful retrieval, and identifier handling.
- Introduced `TestSurfaceSecretsScope` for managing environment variables during tests.
- Developed `ProvenanceMongoExtensions` for attaching DSSE provenance and trust information to event documents.
- Implemented `EventProvenanceWriter` and `EventWriter` classes for managing event provenance in MongoDB.
- Established MongoDB indexes for efficient querying of events based on provenance and trust.
- Added models and JSON parsing logic for DSSE provenance and trust information.
2025-11-13 09:29:09 +02:00

2.5 KiB
Raw Blame History

Sprint 161 - Export & Evidence · 160.A) EvidenceLocker

Active items only. Completed/historic work now resides in docs/implplan/archived/tasks.md (updated 2025-11-08).

[Export & Evidence] 160.A) EvidenceLocker Depends on: Sprint 110.A - AdvisoryAI, Sprint 120.A - AirGap, Sprint 130.A - Scanner, Sprint 150.A - Orchestrator Summary: Export & Evidence focus on EvidenceLocker).

Task ID State Task description Owners (Source)

Task board (snapshot: 2025-11-12)

Task ID State Description Owners (Source)
EVID-OBS-54-002 TODO Finalize deterministic bundle packaging + DSSE layout per docs/modules/evidence-locker/bundle-packaging.md, ensuring parity with portable/incident modes. Evidence Locker Guild (src/EvidenceLocker/StellaOps.EvidenceLocker)
EVID-REPLAY-187-001 TODO Implement replay bundle ingestion + retention APIs and document storage policy updates referencing docs/replay/DETERMINISTIC_REPLAY.md. Evidence Locker Guild · Replay Delivery Guild
CLI-REPLAY-187-002 TODO Add scan --record, verify, replay, diff CLI verbs with offline bundle resolution; sync golden tests. CLI Guild (src/Cli/StellaOps.Cli)
RUNBOOK-REPLAY-187-004 TODO Publish /docs/runbooks/replay_ops.md coverage for retention enforcement, RootPack rotation, and verification drills. Docs Guild · Ops Guild
EVID-CRYPTO-90-001 TODO Route hashing/signing/bundle encryption through ICryptoProviderRegistry/ICryptoHash for sovereign crypto providers. Evidence Locker Guild · Security Guild

Dependencies & readiness

  • Waiting on AdvisoryAI evidence bundle schema + payload notes (Sprint 110.A) to freeze DSSE manifest format.
  • Waiting on orchestrator + notifications capsule schema (Sprint 150.A / Sprint 140.A handoff) to finalize ingest API fields.
  • Replay Ledger alignment requires docs/replay/DETERMINISTIC_REPLAY.md sections 2, 8, and 9 to be reflected in Evidence Locker + CLI before DOING.
  • Crypto routing must follow docs/security/crypto-routing-audit-2025-11-07.md and align with Export Centers EXPORT-CRYPTO-90-001 for consistency.

Ready-to-start checklist

  1. Capture orchestrator capsule + AdvisoryAI schema diffs in this sprint doc (attach sample payloads).
  2. Draft Replay Ledger API summary + CLI command notes here so EVID-REPLAY-187-001 can flip to DOING.
  3. Confirm ICryptoProviderRegistry design with Security Guild ahead of 2025-11-18 readiness review.
  4. Ensure docs/ops owners have outline for replay runbook before CLI/EvidenceLocker work begins.